You are here: Security > Attribute-based access control > Creating attribute types for a case and a user

Creating ABAC policies for a case and a user

You can create hierarchical attributes (to specify a defined ranking of values, represented as integers) and All Of and One Of conditions (to specify how to compare the multi-value attribute types between the user and object) on cases to determine who is authorized to access the case.

Note: You can create policies only for Work- and Data- classes.

To create attributes for a case and a user, complete the following steps.

  1. In Designer Studio open a case, choose a property field, where you want to enter:
  1. Click Save.
  2. Click Records > Security > Access Control Policy.
  3. In the Label field, enter the policy name.
  4. In the Context section in the Apply to (class) field, enter a class.
  5. In the Add to ruleset field, select a ruleset.
  6. Click Create and open.
  7. On the Definition tab, select the Disallow creation of a policy with the same name at a descendant class check box to prevent overriding the policy in a descendant class.
  8. In the Condition field, enter the policy condition rule name.
  9. Click Save.
  10. Click Records > Security > Access Control Policy Condition.
  11. In the Label field, enter the policy condition name.
  12. In the Context section in the Apply to (class) field, enter the rule, to which the policy applies to.
  13. In the Add to ruleset field, select the ruleset.
  14. Click Create and open.
  15. On the Definition tab in the Condition field, enter a condition name.
  16. In the Column source field, enter the property in which the case attributes are entered.
  17. In the Relationship field, select the numerical and string attributes.
  18. In the Value field, enter the attribute value or values (depending on the attribute type) that you want the condition to check.